Job Description

You are as unique as your background, experience and point of view. Here, you\xe2\x80\x99ll be encouraged, empowered and challenged to be your best self. You\'ll work with dynamic colleagues - experts in their fields - who are eager to share their knowledge with you. Your leaders will inspire and help you reach your potential and soar to new heights. Every day, you\'ll have new and exciting opportunities to make life brighter for our Clients - who are at the heart of everything we do. Discover how you can make a difference in the lives of individuals, families and communities around the world.

:

The Director, IAM Capabilities and Technology Support oversees the delivery of the Identity and Access Management (IAM) program and corresponding services at Sun Life. The incumbent will report to the AVP, Global Identity and Access Management and is responsible for a growing global team of ~15 IAM technology professionals through 2+ direct reporting managers.

They manage a team of IAM Operation staff with expertise in supporting technologies including SailPoint IdentityIQ, Transmit Multifactor Authentication (MFA) and OKTA. The team consists of IAM Developers, Business Analysts, Quality Assurance Analysts and Technical Support staff. The incumbent will also assist in overseeing performance by external contractors engaged for project and development work.

The incumbent is accountable to develop and maintain an overall IAM Technology strategy with a delivery roadmap including defined IAM capabilities that aligns with industry best practices and emerging technologies supporting Sun Life\xe2\x80\x99s overall Information Security mandate. The strategy will provide clear outcomes and respond to business, compliance, regulatory requirements, emerging risks.

Accountabilities:

• Maintain end-to-end oversight across the access management lifecycle with a focus on risk-based controls that prevent, detect, and mitigate inappropriate or excessive access, through Sun Life\xe2\x80\x99s technology platform enabling service delivery, continuous improvement and strategy development.
• Point of contact for all IAM Security products, services, capabilities and provide consultation services with our key stakeholders.
• Provides expertise in the technical aspects of IAM tools, supports reporting staff by providing coaching, mentorship and training in order to build a strong team.
• Operating with compliance to the Sun Life Logical Access Security Directive (LASD) and other security directives while meeting SOX and legislative requirements.
• Manages all phases of IAM projects including collaborating with Project Managers from initiation to closure while leveraging project management best practice and standards.
• Reports to upper management with project status and provides regular statistics from supported IAM tools.
• Leads the team to work with Sunlife cross-functional teams, external contractors and vendors in projects for remediation of issues, deploying enhancements and all integration initiatives.
• Accountable to maintain operational health of related infrastructure, middleware and applications ensuring resilience of all IAM systems.
• Key Risk Indicators (KRI) and Key Performance Indicators (KPI) are to be developed and implemented where appropriate.
• Calculates a budget to meet organizational goals. Forecasts future departmental needs including human and material resources and capital expenditures.

Leads highly complex assignments and oversees the day-to-day operations related Sun Life\xe2\x80\x99s IAM technologies, such as:

• Identity Provider, SailPoint IIQ
• ACF2/RACF (Mainframe)
• Privileged Access Management (CyberArk)
• Multi-Factor Authentication technologies (Transmit, Okta, Azure AD)

Competencies:

• Highly self-motivated and directed professional, with keen attention to detail.
• Great interpersonal and organizational skills to lead reporting staff; be flexible, be a coach and mentor to the team.
• Extensive knowledge of IT Security principles, protocols, practices and industry standards.
• Sailpoint IIQ experience is highly preferred.
• Good understanding of Transmit, Okta, Twilio, Azure AD and CyberArk is an asset.
• Good understanding of Mainframe technologies such as ACF2 and RACF is an asset.
• A deep understanding in Identity and Access management principals, methodology, and solutions including access control (role-based and discretionary), authentication, authorization, provisioning, approvals, metrics and workflows.
• Comprehensive knowledge of current and emerging IAM technologies including application onboarding, automated provisioning/de-provisioning, SSO, identity federation, multifactor authentication, role/policy-based access, virtual directories, privileged management, etc.
• Delivery in Waterfall and Agile development methodologies, including Kanban and Scrum including working experience with Jira and Confluence.
• Formal presentations to various committees, stakeholders and executives are required. Excellent written skills are required to prepare reports and documents for an executive audience.
• Technology generalist, with a good understanding of all aspects of IT especially architecture.
• Strong consulting skill and ability to create a win - win outcome.
• Knowledge of the Sun Life Distribution network is an asset
• Familiarity with federated identity and web services security concepts such as SAML, Liberty ID-FF and ID-WSF, WS-Federation, OpenID, OAuth and WS-Security.

Education and Experience:

• University degree/college diploma in related discipline(s) or equivalent work experience, and/or 10+ years in IT and Security industry experience
• Up-to-date Professional Certificate(s) in IT Security field is preferred, e.g. with (ISC)2, CIAM, and/or ITIL
• Minimum of 5+ years Leadership experience in Identity and Access Management
• Proven experience and success with managing IAM product deployments.
• Proven experience with enterprise directory architecture and design best practices.
• Some travel will be required
• Expected to respond outside business hours supporting security incidents, crisis or implementations.

What\xe2\x80\x99s in it for you?

• Great Place to Work\xc2\xae Certified in Canada and the US - 2022
• Great Place to Work\xc2\xae list for Best Workplaces for #HybridWork \xe2\x80\x93 2022
• Great Place to Work\xc2\xae list for Best Workplaces for Professional Development in Canada \xe2\x80\x93 2022
• Great Place to Work\xc2\xae list for Best Workplaces in Canada \xe2\x80\x93 2022
• Named \xe2\x80\x9cBest Places to Work\xe2\x80\x9d by Glassdoor \xe2\x80\x93 2021 and 2023
• Canada Award for Excellence for Mental Health at Work - 2021
• Flexible hybrid work model including in-country (Canada) work-from-home if you prefer. #LI-Remote, or #LI-Hybrid.
• Pension, stock and savings programs to help build and enhance your future financial security
• Work and professional development that is united by our Purpose: to help Clients and Employees achieve lifetime financial security and live healthier lives
• A friendly, collaborative and inclusive culture
• Be part of our continuous improvement journey in developing the next greatest digital enterprise experience.
• Competitive salary and bonus structure influenced by market range data
• A common sense dress code, where you decide how you dress based on your day
• The opportunity to move along a variety of career paths with amazing networking potential

The Base Pay range is for the primary location for which the job is posted. It may vary depending on the work location of the successful candidate or other factors. In addition to Base Pay, eligible Sun Life employees participate in various incentive plans, payment under which is discretionary and subject to individual and company performance. Certain sales focused roles have sales incentive plans based on individual or group sales results.

Diversity and inclusion have always been at the core of our values at Sun Life. A diverse workforce with wide perspectives and creative ideas benefits our clients, the communities where we operate and all of us as colleagues. We welcome applications from qualified individuals from all backgrounds.

Persons with disabilities who need accommodation in the application process or those needing job postings in an alternative format may e-mail a request to .

At Sun Life we strive to create a flexible work environment where our employees are empowered to do their best work. Several flexible work options are available and can be discussed throughout the selection process depending on the role requirements and individual needs.

We thank all applicants for showing an interest in this position. Only those selected for an interview will be contacted.

Salary Range: 111,100/111 100 - 177,800/177 800

Job Category: IT - Technology Services

Posting End Date: 31/05/2023

Sun Life Financial